学位论文详细信息
  1. 返回上一页
Intrusion-Tolerant SCADA for the Power Grid
Intrusion Tolerance;Byzantine Fault Tolerance;Critical Infrastructure;SCADA;Power Grid;Cybersecurity;Computer Science
Tantillo, Thomas JAmir, Yair ;
Johns Hopkins University
关键词: Intrusion Tolerance;    Byzantine Fault Tolerance;    Critical Infrastructure;    SCADA;    Power Grid;    Cybersecurity;    Computer Science;   
Others  :  https://jscholarship.library.jhu.edu/bitstream/handle/1774.2/60092/TANTILLO-DISSERTATION-2018.pdf?sequence=1&isAllowed=y
瑞士|英语
来源: JOHNS HOPKINS DSpace Repository
PDF
【 摘 要 】

Supervisory Control and Data Acquisition (SCADA) systems form the monitoring and control backbone of the power grid. It is critical to ensure that SCADA systems are continuously available and operating correctly at their expected level of performance. However, as key components of the power grid infrastructure, SCADA systems are likely to be targeted by nation-state-level attackers willing to invest considerable resources to disrupt the power grid.We present the first intrusion-tolerant SCADA system that is resilient to both system-level compromises and sophisticated network-level attacks and compromises. While existing SCADA systems often deploy two control centers for fault tolerance, we show that two control centers, even if active at the same time, cannot provide the necessary resilience. We develop a novel architecture that distributes the SCADA system management across three or more active sites to ensure continuous availability in the presence of simultaneous intrusions and network attacks. To make our architecture viable for deployment by power companies that budget for no more than two control centers, we extend our architecture to allow the two control centers used today to be augmented with one or more commodity data center sites to provide the same level of resilience at a feasible cost.The system design is implemented in the Spire intrusion-tolerant SCADA system, which is available as open source. Spire was recently tested in a red-team experiment, during which an experienced hacker team completely compromised a traditional SCADA system setup according to best practices, but was unable to impact Spire’s guarantees over several days of attack. In addition, a wide-area deployment of Spire, using two control centers and two data centers spanning 250 miles (similar to large U.S. power grids), delivered nearly 99.999% of all SCADA updates initiated over a 30-hour period within 100ms. These results demonstrate that Spire provides meaningful security advantages over traditional SCADA systems and that Spire can meet the latency requirements of SCADA for the power grid.

【 预 览 】
附件列表
Files Size Format View
Intrusion-Tolerant SCADA for the Power Grid 3399KB PDF download
  文献评价指标  
  下载次数:36次 浏览次数:67次
   
推荐资源列表
关于我们|团队介绍|帮助中心|联系我们

Copyright © 2016 中国科学院文献情报中心

京公网安备340104078870146号  878987797  028-85220240

OAinOne平台基于对开放资源的发现、遴选和评价方式,发现、获取、集成9类优质的开放科技资源,包括开放期刊、开放会议论文、开放课件、科技政策、开放学位论文、开放图书、开放科技报告、科研项目、开放科学数据。同时,为实现开放知识资源普遍服务、个性化服务、精准服务,基于OAinONE集成的丰富开放资源,开发建设领域开放知识资源服务定制工具(OAtoYOU)、开放资源评价评估体系(OAEvaluation),建设集成OAinONE资源及其他第三方资源的OA Hub,及其面向我院分布式大数据知识资源系统及其他第三方的开放接口服务,并打造特色专题数据库产品建设,包括科技政策集成及趋势平台、开放课程大讲堂等。此外,OAinOne构建开放知识资源建设的可持续发展机制,支持我院研究所特色馆藏资源、自建资源、古籍资源等在OAinONE平台上的集成、开放、共享。